New malware infects over 36.5 million Android devices to generate fraudulent ad revenue

Jos

Jos

Posts: 3,073   +97
Staff

Up to 36.5 million Android devices may have been infected with a newly discovered piece of malware that generated fraudulent ad revenue for its creators. The malicious code was spotted in in 41 apps developed by a Korean company named Kiniwini and registered on Google Play as ENISTUDIO Corp., which produces a series of casual cooking and fashion games under the “Judy” brand.

According to CheckPoint Security, most of these apps have been on the Play Store for a long time but they were all recently updated so it’s unclear as to when the malicious code was added.

In order to circumvent Google Play’s Protection, the hackers only downloaded the actual malicious payload after the app had been installed by connecting to a C&C server (Command and Control). This includes JavaScript code, a user-agent string and URLs controlled by the malware authors. Once a connection is established, the malware opens said URLs in the background and starts generating clicks.

Although this is potentially the most widely-spread malware yet found on Google Play, it isn’t the first nor the most damaging. CheckPoint says it did not find any evidence of compromised user data.

Google has removed the apps after being notified by CheckPoint but you can find the complete list of the affected apps here, and of course, if any of them are on your phone you should uninstall right away.

Permalink to story.

https://www.techspot.com/news/69494-new-malware-infects-over-365-million-android-users.html

 
Techspot fails at basic maths and assumes that the affected apps are all downloaded on one per device.
 
While I am in favor of public execution for hackers, I'm a little less harsh on those that engage in this sort of thing; so lets do something much more humain such as remove their thumbs and index fingers ..... that will slow their skills for awhile and let them ponder what their professional futures will be when caught again and the remainder of their digits are removed ...... Still too harsh???
 
  • Like
Reactions: Skidmarksdeluxe
Uncle Al said:
While I am in favor of public execution for hackers, I'm a little less harsh on those that engage in this sort of thing; so lets do something much more humain such as remove their thumbs and index fingers ..... that will slow their skills for awhile and let them ponder what their professional futures will be when caught again and the remainder of their digits are removed ...... Still too harsh???
Click to expand...

That mini saw from the last news now seems even more practical...

Bosch-NanoBlade-Pistol-Grip-Saw.jpg

jason-friday-13th-hockey-mask_281976.jpg
 
Last edited:
  • Like
Reactions: Uncle Al and Raoul Duke
bexwhitt said:
Techspot fails at basic maths and assumes that the affected apps are all downloaded on one per device.
Click to expand...
well it does say "up to" and "may have been", I call them weasel words since they are weaseling out of making a more definitive statement. Like the ads, save up to 50%. Virtually meaningless, is almost everything in the store 50% off, or is it a 'loss leader' that they had 2 items in stock and the rest of the store is like 1% off. You can't tell.
 
Uncle Al said:
While I am in favor of public execution for hackers, I'm a little less harsh on those that engage in this sort of thing; so lets do something much more humain such as remove their thumbs and index fingers ..... that will slow their skills for awhile and let them ponder what their professional futures will be when caught again and the remainder of their digits are removed ...... Still too harsh???
Click to expand...
Too lenient.
 
  • Like
Reactions: Uncle Al
Raoul Duke said:
well it does say "up to" and "may have been", I call them weasel words since they are weaseling out of making a more definitive statement. Like the ads, save up to 50%. Virtually meaningless, is almost everything in the store 50% off, or is it a 'loss leader' that they had 2 items in stock and the rest of the store is like 1% off. You can't tell.
Click to expand...
It says "over" in the title, and if that's true D Trump is the best President EVER.
 
You must log in or register to reply here.

Similar threads

midian182
  • Locked
Google sues alleged crypto scammers who uploaded fraudulent apps to the Play Store
Replies
24
Views
283
emmzo
E
midian182
Google awarded $10 million in bug bounties last year, the second highest in the program's...
Replies
2
Views
146
toooooot
T
A
Android 15 might come with an improved desktop mode
Replies
5
Views
129
NumberNine
NumberNine

Latest posts

Back